How to exclude ADAudit Plus from antivirus and endpoint protection

How to exclude ADAudit Plus from antivirus and endpoint protection

In this article:  

  • Objective

  • Prerequisites

  • Steps to follow

  • Validation and confirmation

  • Tips

  • Related topics and articles

Objective  

This article explains how to exclude ADAudit Plus from antivirus and endpoint protection software to ensure smooth functioning and prevent performance issues. Exclusions are required because antivirus and endpoint protection solutions can sometimes falsely flag ADAudit Plus’ database or installation files as threats, which may disrupt normal operations.

Prerequisites  

  • You must have administrator access to the server where ADAudit Plus is installed.

  • You need administrator access to the management console for your antivirus or endpoint protection software.

Steps to follow  

Antivirus and endpoint protection software can cause performance issues with ADAudit Plus. To prevent these problems, it is recommended to exclude specific ADAudit Plus directories and processes from security scans.

Why exclusions are required:

Antivirus and endpoint protection may:

  • Cause high latency while processing events and alerts.

  • Result in low throughput when adding data to the database or DataEngine.

  • Lead to corruption of database files.

Directories to exclude  

Exclude the following directories from antivirus and endpoint protection scans:

  • <Installation_Directory>\ManageEngine\ADAudit Plus\index

  • <Installation_Directory>\ManageEngine\ADAudit Plus\eventdata

  • <Installation_Directory>\ManageEngine\ADAudit Plus\alertdata

  • <Installation_Directory>\ManageEngine\ADAudit Plus\ehcache

  • <Installation_Directory>\ManageEngine\ADAudit Plus\apps\dataengine-xnode\data

  • <Installation_Directory>\ManageEngine\ADAudit Plus\pgsql

Processes to exclude  

Exclude the following executables:

  • <Installation_Directory>\ManageEngine\ADAudit Plus\jre\bin\java.exe

  • <Installation_Directory>\ManageEngine\ADAudit Plus\pgsql\bin\postgres.exe

These processes are critical for ADAudit Plus’ operation as they power the application server (Java) and the database (PostgreSQL).

Validation and confirmation  

  • Verify that the exclusions have been successfully applied in your antivirus/endpoint protection software.

  • Start or restart ADAudit Plus and monitor performance.

  • Confirm that events and alerts are processed without latency and that the database operates without errors.

Tips  

  • Regularly review and update exclusions if the installation path of ADAudit Plus changes.

  • Ensure only the listed directories and executables are excluded to maintain security while preventing false positives.

  • Keep both ADAudit Plus and your antivirus/endpoint protection software up to date.

Related topics and articles  


      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
                See all integrations
                New to ADManager Plus?
                See all integrations
                New to ADManager Plus?

                  New to ADSelfService Plus?

                  Start your free trial
                  Start your free trial

                      Related Products